VDB
CVE-2013-3009
CVE-2013-3009
PUBLISHED
In IBM Java Runtime bestehen mehrere Schwachstellen, welche die Integrität, Vertraulichkeit und Verfügbarkeit gefährden. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um dadurch die Integrität, Vertraulichkeit und Verfügbarkeit zu gefährden. Für die Ausnutzung dieser Schwachstellen ist eine Benutzeraktion erforderlich. Die Bewertung des Schweregrades dieser Schwachstelle basiert auf dem Wert "Complete" für "Integrity", "Confidentiality" und "Availability" in der CVSS Risiko Matrix von IBM.
EPSS 5.85% · 90.7th percentile
Risk Scores
EPSS Score
5.85%
90.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat Enterprise Linux | |
| IBM | IBM Java 5.0 | |
| IBM | IBM Java 1.4.2 | |
| IBM | IBM Java 6.x | |
| HPE | HPE HP-UX | |
| SUSE | SUSE Linux Enterprise Server | |
| IBM | IBM Operational Decision Manager 8.11.x | |
| SUSE | SUSE Linux Enterprise Desktop | |
| Ubuntu | Ubuntu Linux | |
| IBM | IBM Java 7.x | |
| IBM | IBM Operational Decision Manager 8.10.x |
Timeline
- Jul 23, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- Jun 6, 2023 CVE Updated
- Jul 16, 2023 EPSS Score
References
- https://access.redhat.com/errata/RHSA-2016:1430 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2013/wid-sec-w-2023-1376.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1376 advisory
- https://www.ibm.com/support/pages/node/7001787 advisory
- http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_July_2013 advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131257-1.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131255-1.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131264-1.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131255-2.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131256-1.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131263-1.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131263-2.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131255-3.html advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21640206 advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00000.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131305-1.html advisory
- https://www.suse.com/support/update/announcement/2013/suse-su-20131293-2.html advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21644918#Client-Side%20IBM%20Java%20SDK%2FJRE%20Vuln advisory
- https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_notes_domino_fixes_for_multiple_vulnerabilities_in_ibm_jre?lang=en_us advisory
- http://www-01.ibm.com/support/docview.wss?uid=nas8N1019760 advisory
…and 5 more